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CLAIM AMENDMENTS 

1 , (currently amended) A gy^tom Apparatus for imegrating a seller's Web site with a 
public key infrastructure, th e W e b s il o pomprising a Wob oorvor and a Web applioaiions wherein: 

the public key infrastructure comprising comprises a buyer computer oomprisine having a 
Web browser adapted to invoke a signing interfece to digitally sign electronic raessagesrthe- 
publio koy infrastructur e further com^i s i ftg and a seller's bank computer system adapted to 
receive service requests from the seller and to respond to those requests with digitally aignod 
s cFvico - re s pon s e s an^ 

the syst e m compri s ing seller's Web site comprises : 
a filter adapted to redirect HTTP requests received from the Web browser, 
coupled to the filter, an internet server application adapted to receive a redirected HTTP 
request from the filter and to process the redirected HTTP request; and 

coupled to the Internet server application, a filter engine adapted to receive the processed 
HTTP request and to identify an HTTP request that contains data requiring a digital signature by 
the buyer computer , 

2, (currently amended) The syst e m a pparatus of claim 1, wherein: 

the filter engine is further adapted to identify an HTTP request that requires accessing a 
service offered by the seller's bank and to formulate a request for the service? i and wherein 

the ^tem seller's Web site fimber comprisesf . coupled to the filter engine, a bank 
interface adapted to receive the request from the filter engine, reformat the request, and transmit 
the request to the seller's bank. 

3, (currently amended) The s ystem apparatus of claim 2, wherein the bank interfecc is 
funber adapted to receive a service response to the request from the seller's bank:^ and forward the 
response to the filter engine. 
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4. (curremly amended) The syistom apparatus of claim 2, wherein the service is 
certificaTe validation. 

5. (currently amended) The system apparatus of claim 1, wherein the seller^s Web site 
further compri s ing comprises, coupled to the filter, a seeesd Web server adapted to parse 
requests redirected by the filter, 

6. (cunemly amended) The system apparatus of claim 1, wherein services provided by 
the seller's bank are provided within the context of a four-comer model, 

7. (currently amended) The system a pparatus of claim 6, wherein the four-comer model 
comprises the buyer, the seller, the seller's bank, and a buyer's bank, 

8. (currently amended) The syQtom apparatus of claim I , wherein the filter is 
implemented using IS APi. 

9. (currently amended) The sy s t em a pparatus of claim I , wherein the Internet s e rvice 
server application is adapted to generate HTTP responses based on data received from the filter 
engine. 

10. (cuirently amended) The svste"^ a pparatus of claim 1, wherein the Internet server 
application is adapted to pass a hash table to the filter engine, 

11. (currently amended) The s yst e m apparams of claim 10, wherein the hash table 
comprises headers ftom the redirected HTTP request. 

12. (currently amended) The system: apparatus of claim 1 0. wherein the hash table 
oompriGBfl the indicates a method of the redirected HTTP request. 

13. (currently amended) The system apparatus of claim 10, wherein the hash uble 
comprises die content-type of the redirected HTTP request, 
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14. (curremly amended) The sy s t e m a pparatus of claim 10, wherein the hash table 
comprises ihe buyer computer's IP address. 

15- (currently amended) The ^stem apparatus of claim 1 0, wherein the hash table 
comprises the actual data in the redirected HTTP request. 

16, ((currently amended) The system apparatus of claim 1 0, wherein the hash table 
comprises a unique session ID, 

17, (currently amended) Tho ovatom of oloim 1 - A system for inteeratine a seller's Web 
site with a public key infrastructure, the Web site comprising a Web server and a Web 
a pplicaiion, the public key infrasirucTure comprising a buyer compmer comprising a Web 
browser adapted to invoke a signing interface to digitally sign electronic messages, the public key 
infrastructure further comprising a seller's bank computer system adapted to receive service 
requests from the seller and respond to t|iose requests with digitally signed service responses: the 
system comprising: 

a filter adapted to ye djyect HTTP requests received from the Web browser; 

an Internet server application adapted to receive a redirected H i'l P request from the filter 
and process tfie redirected HTTP request: and 

a filter engine adapted to receive the processed H request and identify an HTTP 
request that contains data requiring signarure bv the buverr : whereini 

the Internet s<^ice server application is a servlet. 

18. (currently amended) The system of claim 3© iL wherein the servlet is constructed as 
a public class object that extends javax.servlet-bttp.HttpServlei, 

19. (curremly amended) The system of claim Si- 18, wherein the public class object 
comprises at least one of a callFilterEngine method, a doGet method, a doPost method, a 
getRequesiHeaders method, a handle Request method, sad aa init method, a print EtrorResponsc 
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method, a printPluginPage method, a readMessage method, a read RequestData method, and a 
setServleiHeaders method, 

20. (previously presented) The system of claim 17, wherein the filter engine is adapted 
to return an object to the servlet. 

21. (cunently amended) The system apparatus of claim 20, wherein the object comprises 
an integer value indicatine one of the following four conditions; 

a signature is required on data in the HTTP requestr^iai ; 
a response has been received liom the seller's bank concerning a service reques^feat i 
the HTTP request has been passed throngb to the a Web applicatio n • o t^ that ; 
an error occurred, 

22, (currently amended) The system a pparatus of claim 4-21, wherein if when the integer 
value indicates that a signature is required on data in the HTTP reqwsi ^im^ the Internet server 
application stores a state of the filter engine in a cookie and causes a Web page containing the 
cookie and an instruction to sign the data to be transmitted to the Web browser, 

23, (currenily amended) The s y s tem apparatus of claim 1 , wherein the filter engine 
determines whether an HTTP request contains data requiring signature by applying filtering 
rules. 

24. (currently amended) The sy^tom apparatus of claim I, wherein the filter engine is 
programmed to recognize each HTTP request that includes data requiring a digital signature by_ 
the buyer's computer . 

25, (currently amended) The Gystom a pparatus of claim I, wherein the filter engine is 
programmed to recognize HTTP requests tratxsmitted by the Web browser that have been 
modified to include a special tag that indicates whether the request includes data that requires a. 
digital signature bv the buyers computer , 
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26. (currency amended) ¥ he -s ystQfii of claim 1 A system for integrating a seller's Web 
siie with a public key infrastrucrure, the Web site comprising a Web server and a Web 
application- the public key infrastructure comprising a buyer computer comprising a Web 
browser adapted to invoke a signing interface to dipitally sign electronic messages, the public key 
trtfra^tmc ture further comprising a seller's bank computer system adapted to receive service 
requests from the seller and respond to those requests with digitally signed service responses; the 
system comprising: 

a filter adapted to redirect HTTP requests received from the Web browser: 

an Internet server application adapted to receive a redirected HT^ request from the filter 
an4 process the redirected HTTP request: and 

a filter engine adapted to receive the processed H i IV request and idemifv an Hl Al* 
request thai contains data requiring signature by the buyer? ; wherein: 

the filter engine is implemented as a public class object that extends java-lang-object. 

21. (currently amended) The system ofclaira 26, wherein the public class object 
comprises at least one of the following methods: a callWebApp method, a getSessionID method, 
a newRequesiHandler method, an oldReqwstHandler method, a service method, wd a 
signedReqviesiHandler method. 

28. (cimremly amended) The system apparatus of claim I, wherein the filter engine 
provides an abstracted fitint end inter&ce via an object oriented computer programming language 
remote method invocation. 

29. (cttrremly amended) The sj^siem a pparatus of claim 1, wherein the filter engine 
employs a rules class. 

30. (currently amended) Tho Gvct e m of claim 4 A system for integra t ing a seller's Web 
site with a public key infi:astructure. the Web site comprising a W eb server and a Web 
a pplication^ the public key infrasiructure comprising a buyer computer co mprising a Web 
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browser adapted to invoke a signing interface to digitally sign electronic messages, the public kev 
infrastructure further comprisinQ a sellers bank computer system adapted to receive service 
requests from the seller an4 respond to those requests with digitally signed service responses; the 
system comprising: 

a filter adapted to redirect HTTP requests received from the Web browser; 

an Internet server applicatiop adapted to receive a redirected HTTP request from the filter 
and process the redirected HTTP request; 

a filler engine adapted to receive the processed HTTP request and identify an HTTP 
request thai contains data requiring si gnature by the buye r , further comprisin g ; and 

a rules class, wherein the rules class comprises the following methods: a getMode 
method, a getService method, a readRules method, a rulesMatch method, and a vaUdateRules 
method- 

3 1 , (currently amended) The system apparatus of claim I7 wherein the seller's Web site 
further comprising comprises, coupled to the filer engine, a bank interface , whoroin tfao bonk 
imorfaoo is designed with a plug-in based architecture. 

32, (currently amended) The systOT* a pparatus of claim Ij wherein the seller's Web site 
further oompriiiing comprises, coupled to the filer engine, a bank interface , - wh e r e in th e bonk 
iniorfaoo auppona supporting an abstract front-end interface to allow communication via a 
plurality of middleware technologies. 

33. (currently amended) The syst e m apparatus of claim 1? wherein the seller's Web site 
fijTther comprising comprises, coupled to the filter ei^me. a bank interface , wherein th e bunk 
intorfhco ig adapted to create and transmit OCSP requests. 

34. (cuiremly amended) The system a pparatus of claim It wherein the seller^s Web site 
fuj^er oompriQine com prises, coupled to the filter engine, ^ bank interfac c> whoroin the ba n k 
t nt - erfao e comi^=t 5&a comprising a certificate status check module. 
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35. (currently amended) The system of claim 1 A system for integrating a seller's Web 
site with a public key infraspncturc, the Web site comprising a Web server and a Web 
application, the public key inftastrucnire comprising a buyer computer comprising a Web 
browser adapted to invoke a siggung interface to digitally sign electronic messages, i^e pub^c key 
infrastructure further comprising a seller's bank computer system adapted to receiye service 
requests from the seller and respond to those requests with digitally signed service responses: the 
svsT&m comprisfflg: 

a filter adapted to redirect mTP requests received from the Web browser: 

an Iniemei server application adapted to receive a redirected HTTP request from the filter 
and process the redirected ^TTP regues^; 

a filter engine adapted to receive the processed HTTP request and identify an HTTP 
request thai conTainSjdata requiring signature bv the buye r. - furth e r comprisin g ; and 

a bank interface, wherein the bank interface comprises a public class object that extends 
javaJang.object. 

36. (currently amended) ^tW - svst(Mm^ef K>laHFh4 A system for integrating a seller's Web 
site with a public key infiustructure, the Web site comprising a Web server and a Web 
application, the public key infrastructure comprising a buyer computer comprising a Web 
browser adapted to invoke a sigping interface to digitally sign electronic messages, the public key 
infrastructure further comprising a sellert bank computer system adapted to receive service 
requests from the seller and respond to those requests with digitally signed service responses: the 
system comprising: 

a filter adapted to redirect HTTP requests received from the Web browser: 

an Internet server application adapted to receive a redirected HTTP request from the filter 

and process the redirected HTTp request: 

a filter engine adapted to receive the processed HTTP request and identify an HTTP 

request that contains data requiring signature bv the buverr ^mhe r oomnrising ; and 
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a public class, wherein the public class objeci comprises a creaxeOCSPRequest method, a 
getCertificatelD method, a getCenStatus method, a getCensVerifyMessage method, a getURL 
method, an isResponseSuccessfiil method, a logAndBuildRetumObject method, a processOCSP 
method, a sendAudReceiveMessage method, a serviceRequest metbo4 and a 
verifyResponseSignature method 

37- (curremly amended) A s yst e m A pparatus for integrating a seller's Web site with a 
public key infrastructure, sa|d apparatus comprising; 
a Web server located at the seller's Web sjte : 

a Web appUcaiion cx3nn & ot e d coupled to the Web server and also located at the seller's 
Web site, the Web application adapted to: 

identify those HTTP requests from a buyer that include data requiring a di gital 
signature of the buyer and to; 

create a Web page for transmission to a browser comroUed bv the buyer that will 
cause the browser to invoke a signing interfece to digitally sign the data; and 

th e W e b - a p plieotion furthor adapted to identify those HTTP requests that require a 
service provided by an emity other than the seller; and 

coupled to the Web application and also located at t^e seller's Web site, a-baric an 
interface module adapted lo receive a request for service from the Web application, format and 
transmit the request, receive a response to the request, and forward the response to the Web 
application. 
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